106.13.211.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 106.13.211.8 on Port 445(SMB)	2020-06-24 07:41:17

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.211.155	attackspam	Port scan: Attack repeated for 24 hours	2020-09-03 22:13:51
106.13.211.155	attackbots	Port scan: Attack repeated for 24 hours	2020-09-03 13:55:01
106.13.211.155	attack	Port scan: Attack repeated for 24 hours	2020-09-03 06:07:44
106.13.211.155	attackspambots	Aug 16 22:09:50 prox sshd[28902]: Failed password for nobody from 106.13.211.155 port 38988 ssh2	2020-08-17 04:48:10
106.13.211.27	attackspambots	TCP (SYN) 106.13.211.27:58888 -> port 445, len 52	2020-07-11 04:38:00
106.13.211.155	attack	TCP (SYN) 106.13.211.155:41379 -> port 15059, len 44	2020-06-03 13:16:59
106.13.211.155	attackbotsspam	$f2bV_matches	2020-04-22 05:34:51
106.13.211.155	attackspambots	2020-04-17T20:23:57.430418abusebot-3.cloudsearch.cf sshd[10755]: Invalid user dockerroot from 106.13.211.155 port 50958 2020-04-17T20:23:57.435481abusebot-3.cloudsearch.cf sshd[10755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.211.155 2020-04-17T20:23:57.430418abusebot-3.cloudsearch.cf sshd[10755]: Invalid user dockerroot from 106.13.211.155 port 50958 2020-04-17T20:24:00.062466abusebot-3.cloudsearch.cf sshd[10755]: Failed password for invalid user dockerroot from 106.13.211.155 port 50958 ssh2 2020-04-17T20:27:06.776052abusebot-3.cloudsearch.cf sshd[11099]: Invalid user test3 from 106.13.211.155 port 37338 2020-04-17T20:27:06.782411abusebot-3.cloudsearch.cf sshd[11099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.211.155 2020-04-17T20:27:06.776052abusebot-3.cloudsearch.cf sshd[11099]: Invalid user test3 from 106.13.211.155 port 37338 2020-04-17T20:27:08.687111abusebot-3.cloudsearch. ...	2020-04-18 04:38:39
106.13.211.155	attack	SSH Invalid Login	2020-04-16 06:52:29
106.13.211.155	attackspam	2020-04-12T23:36:48.3025301495-001 sshd[36730]: Invalid user git from 106.13.211.155 port 38992 2020-04-12T23:36:48.3106091495-001 sshd[36730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.211.155 2020-04-12T23:36:48.3025301495-001 sshd[36730]: Invalid user git from 106.13.211.155 port 38992 2020-04-12T23:36:50.5566731495-001 sshd[36730]: Failed password for invalid user git from 106.13.211.155 port 38992 ssh2 2020-04-12T23:39:11.7365951495-001 sshd[36900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.211.155 user=root 2020-04-12T23:39:13.9476011495-001 sshd[36900]: Failed password for root from 106.13.211.155 port 38966 ssh2 ...	2020-04-13 15:34:21
106.13.211.195	attack	ThinkPHP Remote Code Execution Vulnerability, PTR: PTR record not found	2019-12-08 20:52:09
106.13.211.195	attack	Nov 30 17:09:32 106.13.211.195 PROTO=TCP SPT=38270 DPT=6379 Nov 30 17:09:33 106.13.211.195 PROTO=TCP SPT=38270 DPT=6379 Nov 30 17:09:33 106.13.211.195 PROTO=TCP SPT=59084 DPT=8080 Nov 30 17:09:34 106.13.211.195 PROTO=TCP SPT=59084 DPT=8080 Nov 30 17:09:34 106.13.211.195 PROTO=TCP SPT=52970 DPT=9200	2019-12-02 06:38:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.211.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.211.8.			IN	A

;; AUTHORITY SECTION:
.			264	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062301 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 24 07:41:14 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.211.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.211.13.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
171.252.45.133	attackspam	Automatic report - Port Scan Attack	2020-02-23 03:24:15
52.87.213.12	attack	Fail2Ban Ban Triggered	2020-02-23 03:22:51
45.133.99.2	attackbots	Feb 22 19:41:45 srv01 postfix/smtpd\[8394\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 22 19:42:06 srv01 postfix/smtpd\[22474\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 22 19:42:25 srv01 postfix/smtpd\[22474\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 22 19:42:46 srv01 postfix/smtpd\[8394\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 22 19:50:46 srv01 postfix/smtpd\[22474\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-02-23 02:56:46
138.197.89.194	attack	Invalid user student from 138.197.89.194 port 41852	2020-02-23 03:08:51
120.92.132.76	attack	$f2bV_matches	2020-02-23 02:58:52
194.60.254.243	attack	Brovary, Ukraine /wp-admin/admin-ajax.php?actio… 22.02.2020 03:23:14 194.60.254.243 194.60.254.243 403	2020-02-23 03:07:17
106.54.242.239	attack	Feb 22 19:39:31 server sshd\[32636\]: Invalid user licm from 106.54.242.239 Feb 22 19:39:31 server sshd\[32636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 Feb 22 19:39:33 server sshd\[32636\]: Failed password for invalid user licm from 106.54.242.239 port 53130 ssh2 Feb 22 19:48:45 server sshd\[1781\]: Invalid user epmd from 106.54.242.239 Feb 22 19:48:45 server sshd\[1781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 ...	2020-02-23 03:02:39
212.120.194.1	attackbotsspam	1582390115 - 02/22/2020 17:48:35 Host: 212.120.194.1/212.120.194.1 Port: 445 TCP Blocked	2020-02-23 03:12:11
101.108.216.27	attack	1582390104 - 02/22/2020 17:48:24 Host: 101.108.216.27/101.108.216.27 Port: 445 TCP Blocked	2020-02-23 03:17:26
51.255.109.165	attackspam	suspicious action Sat, 22 Feb 2020 13:48:02 -0300	2020-02-23 03:29:48
27.105.103.3	attackspambots	suspicious action Sat, 22 Feb 2020 13:48:58 -0300	2020-02-23 02:53:07
43.243.168.98	attackbotsspam	suspicious action Sat, 22 Feb 2020 13:48:25 -0300	2020-02-23 03:16:44
212.100.143.242	attack	Feb 22 06:43:32 hanapaa sshd\[8518\]: Failed password for nobody from 212.100.143.242 port 44147 ssh2 Feb 22 06:45:56 hanapaa sshd\[8714\]: Invalid user test01 from 212.100.143.242 Feb 22 06:45:56 hanapaa sshd\[8714\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.100.143.242 Feb 22 06:45:59 hanapaa sshd\[8714\]: Failed password for invalid user test01 from 212.100.143.242 port 21093 ssh2 Feb 22 06:48:32 hanapaa sshd\[8907\]: Invalid user work from 212.100.143.242	2020-02-23 03:13:10
123.51.162.52	attackbots	2020-02-22T19:50:08.831949 sshd[13805]: Invalid user squid from 123.51.162.52 port 44883 2020-02-22T19:50:08.846335 sshd[13805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.51.162.52 2020-02-22T19:50:08.831949 sshd[13805]: Invalid user squid from 123.51.162.52 port 44883 2020-02-22T19:50:10.872619 sshd[13805]: Failed password for invalid user squid from 123.51.162.52 port 44883 ssh2 ...	2020-02-23 03:01:46
47.90.209.239	attackbots	Automatic report - XMLRPC Attack	2020-02-23 03:12:49

最近上报的IP列表

110.117.63.48	65.68.98.16	118.6.254.80	160.4.41.178
114.18.60.204	211.157.232.46	223.29.183.95	98.181.208.51
37.2.43.114	36.194.213.227	187.20.255.172	156.236.118.53
153.151.15.242	187.115.117.29	65.251.181.69	37.191.6.87
119.119.148.112	181.228.140.151	184.163.128.166	54.67.25.146